Koozali.org: home of the SME Server

fighting SPAM @ SME9: which howTo to follow ?

Offline Jáder

  • *
  • 1,099
  • +0/-0
    • LinuxFacil
fighting SPAM @ SME9: which howTo to follow ?
« on: December 29, 2015, 11:39:40 AM »
I´ve migrate one SME8 to SME9 x64! Urra!

Now I´m moving anti SPAM measures... and cannot find a clear wiki text point which config to use.
I used to use this:
http://wiki.contribs.org/Learn
  but it now points to
http://www.sonoracomm.com/support/19-inet-support/49-spam-filter-configuration-for-sme-7

and both appears to be SME7.

I can try any and document it later on wiki, just do not wanna to mess with a new production serve without tips about where to start.

Regards.

Jáder
...

guest22

Re: fighting SPAM @ SME9: which howTo to follow ?
« Reply #1 on: December 29, 2015, 02:29:03 PM »
I'm sure you saw this page? http://wiki.contribs.org/Email

Offline Jáder

  • *
  • 1,099
  • +0/-0
    • LinuxFacil
Re: fighting SPAM @ SME9: which howTo to follow ?
« Reply #2 on: December 29, 2015, 05:28:34 PM »
Yes RequestedDeletion, I did.

Just wanna to be sure all functions were moved there.
I wanna to use LEARN folders . It was a extra script before. Is this now default to standard SME ?
As a friend of mine once said: "Viagra propaganda is not spam to everyone" :)

Regards

Jáder
...

Offline mmccarn

  • *
  • 2,656
  • +10/-0
Re: fighting SPAM @ SME9: which howTo to follow ?
« Reply #3 on: December 31, 2015, 01:28:46 PM »
While not directly related to spam fighting measures, I've been accumulating the tools I use to monitor mail server performance (including spam blocking) here:
http://wiki.contribs.org/Email_Statistics

Things I use that aren't specifically discussed in the Sonoracomm howto or included in the Learn contrib:

* SBLList
I recently discovered that with dbl.spamhaus.org included in the SBLList on my server, rhsbl consistently blocks 60% of the inbound emails on one server (but only 3.4% on another).

* check_badmailfrom_patterns
Before discovering how effective dbl.spamhaus.org is on the server mentioned, I setup and configured check_badmailfrom_patterns to block top level domains that never sent the client any real email (.biz, .eu, .info, .faith, .cricket, .accountant, .xyz, etc).  this plugin still blocks some email (3.4%), but without dbl.spamhaus.org in the SBLList it was blocking almost 50% of inbound email deliveries.

* I've increased the default check_earlytalker delay from 1 second to 5 seconds. check_earlytalker is catching 7% of attempted deliveries to the spam-prone server mentioned earlier.

* I've added a custom template to allow support for A-record RBL lists (like b.barracudacentral.org).  On every server I've added it to, the b.barracudacentral.org list blocks more spam than any other service configured in my DNSBL settings.

* rbl-recheck.sh will check recently received mail for one or all users, and identify messages that were delivered from servers that are now listed in your DNSBL services.  The messages identified can either be listed or moved into a new folder. 

* I make regular use of mxtoolbox to research obvious spam to find out why it wasn't blocked, and look for ways to block similar spam moving forward. This has led me to serveral aggressive but useful DNSBL services: ix.dnsbl.manitu.net, truncate.gbudb.net, bl.nosolicitado.org.  These services may block mid-size ISPs and are likely to require some whitelisting.

Offline Stefano

  • *
  • 10,894
  • +3/-0
Re: fighting SPAM @ SME9: which howTo to follow ?
« Reply #4 on: December 31, 2015, 01:37:06 PM »
* I've added a custom template to allow support for A-record RBL lists (like b.barracudacentral.org).  On every server I've added it to, the b.barracudacentral.org list blocks more spam than any other service configured in my DNSBL settings.

Doh! I missed this one.. just trying it on a server of mine, will report back

Thank you

P.S. mmccarn, your last post should be wikified in some way IMO

Offline Stefano

  • *
  • 10,894
  • +3/-0
Re: fighting SPAM @ SME9: which howTo to follow ?
« Reply #5 on: December 31, 2015, 01:53:50 PM »

Offline ReetP

  • *
  • 3,952
  • +6/-0
Re: fighting SPAM @ SME9: which howTo to follow ?
« Reply #6 on: December 31, 2015, 02:07:45 PM »
And geoip blocking is quite handy too

http://wiki.contribs.org/GeoIP
...
1. Read the Manual
2. Read the Wiki
3. Don't ask for support on Unsupported versions of software
4. I have a job, wife, and kids and do this in my spare time. If you want something fixed, please help.

Bugs are easier than you think: http://wiki.contribs.org/Bugzilla_Help

If you love SME and don't want to lose it, join in: http://wiki.contribs.org/Koozali_Foundation